RHEL 5 : kernel (RHSA-2009:1455)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2009:1455 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security fix: a NULL pointer dereference flaw was found in the...

CVE-2009-3000

CVE-2009-3000 affects Sun Solaris 10 and OpenSolaris (SNV_41 through SNV_122) where the sockfs kernel module, when Network Cache Accelerator (NCA) logging is enabled, allows remote attackers to trigger a denial of service (panic) via unspecified web-server traffic that causes a NULL pointer deref...

CVE-2009-2952

Unspecified vulnerability in the pollwakeup function in Sun Solaris 10, and OpenSolaris before snv51, allows local users to cause a denial of service panic via unknown vectors...

CVE-2009-2952

The CVE-2009-2952 issue affects Solaris 10 and OpenSolaris prior to snv_51, where the pollwakeup function is vulnerable. The description indicates an unspecified vulnerability that allows local users to trigger a denial of service (panic). Public technical details in the provided documents are li...

Linux Kernel 'posix-timers.c' NULL指针引用拒绝服务漏洞

Bugraq ID: 35976 Linux是一款开放源代码的操作系统。 kernel/posix-timers.c文件中的"clocknanosleep"函数存在错误，调用clockid等于 CLOCKMONOTONICRAW的donanosleep可导致NULL指针引用而造成系统触发Panic，造成拒绝服务攻击。 Linux kernel 2.6.31 -rc3 + Trustix Secure Enterprise Linux 2.0 + Trustix Secure Linux 2.2 + Trustix Secure Linux 2.1 + Trustix Secure Lin...

kernel security update

CentOS Errata and Security Advisory CESA-2009:1193 Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages...

Cross site request forgery (csrf)

The IATA ata driver in FreeBSD 6.0 and 8.0, when read access to /dev is available, allows local users to cause a denial of service kernel panic via a certain IOCTL request with a large count, which triggers a malloc call with a large value...

CVE-2009-2649

The IATA ata driver in FreeBSD 6.0 and 8.0, when read access to /dev is available, allows local users to cause a denial of service kernel panic via a certain IOCTL request with a large count, which triggers a malloc call with a large value...

CVE-2009-2644

Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv121, when extended file attributes are used, allows local users to cause a denial of service panic via vectors related to "pathnames for invalid fds."...

Race condition

Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv121, when extended file attributes are used, allows local users to cause a denial of service panic via vectors related to "pathnames for invalid fds."...

openSUSE Security Update : kernel (kernel-270)

This patch updates the openSUSE 11.0 kernel to the 2.6.25.18 stable release. It also includes bugfixes and security fixes : CVE-2008-4410: The vmiwriteldtentry function in arch/x86/kernel/vmi32.c in the Virtual Machine Interface VMI in the Linux kernel 2.6.26.5 invokes writeidtentry where...

FreeBSD 7.2 (pecoff executable) Local Denial of Service Exploit

No description provided by source. / pecoffpanic.c by Shaun Colley, 20 July 2009 this code will panic the freebsd kernel due to a bug in the PECOFF executable loader code 'options PECOFFSUPPORT' in kernel config or kldload pecoff panic9 is in vmfault due to a page fault. the panic seems to be...

FreeBSD 7.2 - pecoff Local Denial of Service

FreeBSD 7.2 - pecoff Local Denial of Service / pecoffpanic.c by Shaun Colley, 20 July 2009 this code will panic the freebsd kernel due to a bug in the PECOFF executable loader code 'options PECOFFSUPPORT' in kernel config or kldload pecoff panic9 is in vmfault due to a page fault. the panic seems...

Null pointer dereference

libprop/propobject.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service NULL pointer dereference and kernel panic via a malformed externalized plist XML form containing an undefined element...

Code injection

Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv120, allows remote attackers to cause a denial of service panic via unspecified packets...

CVE-2009-2483

libprop/propobject.c in proplib in NetBSD 4.0 and 4.0.1 allows local users to cause a denial of service NULL pointer dereference and kernel panic via a malformed externalized plist XML form containing an undefined element...

CVE-2009-2483

The CVE-2009-2483 entry affects NetBSD 4.0 and 4.0.1 via libprop/prop_object.c in proplib. A local attacker can trigger a denial of service by supplying a malformed externalized plist (XML form) containing an undefined element, causing a NULL pointer dereference and kernel panic. The connected do...

CVE-2009-2486

CVE-2009-2486: Unspecified vulnerability in the SCTP implementation affects Sun Solaris 10 and OpenSolaris prior to snv_120, allowing remote denial of service (panic) via unspecified packets. Affected component is SCTP in these OS releases. Root cause details are not provided in the documents; no...

FreeBSD 6/8 (ata device) Local Denial of Service Exploit

No description provided by source. / atapanic.c by Shaun Colley, 13 July 2009 this panics the freebsd kernel by passing a large value to malloc9 in one of fbsd's ata ioctl's. tested on freebsd 6.0 and 8.0. you need read access to the ata device in /dev to be able to open the device. chain with so...

FreeBSD 6/8 - ata Device Local Denial of Service

/ atapanic.c by Shaun Colley, 13 July 2009 this panics the freebsd kernel by passing a large value to malloc9 in one of fbsd's ata ioctl's. tested on freebsd 6.0 and 8.0. you need read access to the ata device in /dev to be able to open the device. chain with some race condition bug? - shaun /...